Personal Access Tokens

Personal Access tokens allow you to use automation scripts and CLI commands in your KeyControl Vaults that are using OIDC for authentication.

The following vaults support using OIDC, AD or local authentication at the same time. For these vaults, only users with the OIDC authentication type can use personal access tokens.

• KeyControl Vault for Cloud Keys

• KeyControl Vault for Databases

• KeyControl Vault for VM Encryption

Each user can have one personal access token. The tokens act like passwords, and are not stored in KeyControl. You must keep track of your own personal access token and keep it safe. If the personal access token is lost, there is no way to retrieve it. You will need to delete the existing token and create a new one.

Once created, you can use your personal access token when you login by providing it as a password. This allows your scripts and CLI to function seamlessly.